Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos network security services platform







Bugtraq: AOL Instant Messanger - Buddy Icon Warn Exploit

AOL Instant Messanger - Buddy Icon Warn Exploit

From: Josh Camacho <sfocus_at_ceromus.com>
Date: 19 Dec 2003 15:24:31 -0000
('binary' encoding is not supported, stored as-is) AOL Instant Messanger - Buddy Icon Warn Exploit

"Discovered by Robbie Saunders, it allows you to warn somebody if they have a buddy icon, but they don't have to send you an Instant Message. This has to be done using a program though, it just sends the user an IM, but request's their buddy icon at the end of it, taking their rate limit away allowing you to warn them or just kill their rate limit all together."

Several programs have already implemented this exploit resulting in a quick attack to raise your warning level to 100% and crippling your communication through aol instant messanger.

Im sorry at this time I do not have the specifics, recommended action is of course to remove your buddy icon until this issue is resolved.

Received on Dec 19 2003
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]